[Pkg-fonts-devel] Bug#605537: [Pkg-fonts-bugs] Bug#605537: fontforge: buffer overflow when opening .BDF files

Christian PERRIER bubulle at debian.org
Tue Dec 7 05:56:05 UTC 2010


Quoting Raphael Geissert (geissert at debian.org):
> severity 605537 grave
> retitle 605537 CVE-2010-4259: fontforge: buffer overflow when parsing
> CHARSET_REGISTRY header of .BDF files
> thanks
> 
> Hi,
> 
> A patch (along with details) is available at:
> https://bugzilla.redhat.com/659359
> 
> When fixing the vulnerability please mention the id (CVE-2010-4259) in
> the changelog.
> Would be great if you could also prepare a fixed version for stable
> (usual coordination with team at security.d.o applies.)

Thanks, Raphaël, for reporting this issue.

Kęstutis, will you handle this or do you need help in some way?


-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-fonts-devel/attachments/20101207/e68957bb/attachment-0001.pgp>


More information about the Pkg-fonts-devel mailing list